Personal Data we Process
Information is collected to administer your account with us, and to provide you with our service(s).
The following personal information is collected:
Your name, email address, gender, birth date, address, mobile phone number, emergency contact information, family member information.
How is your Personal Data Collected?
We use a booking system which collects all of the information you enter into our website and stores it securely for you to avail of the services at Savvy Studios.
Your personal information is collected and stored securely.
We cannot provide services to you without having Personal Data by the nature of the industry, therefore in accepting our terms of service by way of purchasing services, you are consenting to your personal data being collected and stored by Savvy Studios.
We will collect your name and email address if you use the contact forms on our website. The information is emailed to us and forwarded to the relevant staff member to be used by us to process your query.
Newsletter signup forms
Should you consent to subscribing to our e-newsletters your name and email address are collected using our email subscription software ‘Mailpoet’. That information is held on our servers and is used to email you our e-newsletters. You may unsubscribe from our e-newsletter at any time by clicking on the link in the footer of the email.
In order to safely take any of our classes you will be asked to disclose personal details and medical history. Legally we must store this information for a period of a minimum of 7 years. This information is held in a highly secured software system and hard copies of this data are destroyed to protect the data.
How We Use Your Personal Data
We may use your personal information to:
- enable your use of the services at Savvy Studios
- send statements, invoices and payment reminders to you, and collect payments from you;
- send you non-marketing commercial communications (should you consent)
- send you email notifications about classes, appointments and events
- send you our email newsletter, if you have requested it
- deal with enquiries and complaints made by or about you relating to our business
- keep our website secure and prevent fraud
We will share information with our payment services provider only to the extent necessary for the purposes of processing payments you make via Stripe, refunding such payments and dealing with complaints and queries relating to such payments and refunds.
Disclosures of your Personal Data
- We may disclose your personal information to any of our employees, teachers, instructors as reasonably necessary for the purposes set out in this policy.
- We may disclose your personal information to the extent that we are required to do so by law in connection with any ongoing or prospective legal proceedings.
- In order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk) to the purchaser (or prospective purchaser) of any business or asset that we are (or are contemplating) selling.
- Except as provided in this policy, we will not provide your personal information to third parties
International Data Transfers
- Information that we collect may be stored and processed in and transferred between any of the countries in which our cloud based storage operates in or Stripe operates in, in order to enable us to use the information in accordance with this policy.
- You expressly agree to the transfers of personal information described in this Section.
- We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.
- All personal information you provide is stored on secure servers.
- All electronic financial transactions entered into through the booking system will be protected by encryption technology.
- You acknowledge that the transmission of information over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
- You are responsible for keeping the password you use for accessing the booking system confidential; we will not ask you for your password.
Retaining Your Data
This Section sets out our data retention policies and procedure, which are designed to help ensure that we comply with our legal obligations in relation to the retention and deletion of personal information.
Personal information that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
Notwithstanding the other provisions of this Section, we will retain documents (including electronic documents) containing personal data:
- to the extent that we are required to do so by law;
- if we believe that the documents may be relevant to any ongoing or prospective legal proceedings; and
- in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk).
- for medical purposes for a minimum of 7 years.
Your Legal Rights
You may request us to provide you with any personal information we hold about you;
The request can be made electronically to firstname.lastname@example.org and by telephone to 01736 756746
The supply of appropriate evidence of your identity – including name, address, phone number, DOB, Next Of Kin, Email Address may be requested.
Requests will be dealt with within one month.
You may instruct us at any time not to process your personal information for marketing purposes. You have the right to instruct us to amend any inaccurate information rectified at any time. You also have the right to be forgotten into a right of erasure where it is legally possible for us to do so.
You have the right to lodge a complaint with the Information Commissioners Office or your local supervisory authority if you consider that the processing of your personal data infringes GDPR.